Topics will vary from year to year, but will focus mainly on network perimeter protection, host-level protection, authentication technologies, intellectual property protection, formal analysis techniques, intrusion detection and similarly advanced subjects. Emphasis in this course is on understanding how security issues impact real systems, while maintaining an appreciation for grounding the work in fundamental science. The course will consist of in-class workshops and interactive discussions. There will be programming assignments and a course project. Students will also be expected to read assigned papers and to present at least one research paper and lead a discussion on it.
Location: Wyman Park 4th floor conference room.
The course project assignment is available here.
Alexander Moshchuk, Tanya Bragin, Damien Deville, Steven D. Gribble, and Henry M. Levy
SpyProxy: Execution-based Detection of Malicious Web Content
Students: Ryan McArthur
Chris Karlof, Umesh Shankar, J. D. Tygar and David Wagner
Dynamic pharming attacks and the locked same-origin policies for web browsers
Students: Ben Godard
Weidong Cui, Jayanthkumar Kannan, Helen J. Wang
Discoverer: Automatic Protocol Reverse Engineering from Network Traces
Students: Zach Crisler
Juan Caballero, Shobha Venkataraman, Pongsin Poosankam, Min Gyung Kang, Dawn Song and Avrim Blum
FiG: Automatic Fingerprint Generation
Students: Gabe Landau
Survey paper duePaper presented
Igor Popov, Samuya Debray, and Gregory Andrews
Binary Obfuscation Using Signals
Students: Joe Guerrera
Andreas Moser, Christopher Kruegel, and Engin Kirda
Exploring Multiple Execution Paths for Malware Analysis
Students: Matthew Pagano
Sushant Sinha, Michael Bailey, Farnam Jahanian
Shedding Light on the Configuration of Dark Addresses
Students: Pagano & Caselden
California: Source code and red team reports.
Ohio: academic report
Students: Godard & Guerrera
Project Status Report Due
David Brumley, Juan Caballero, Zhenkai Liang, James Newsome, Dawn Song
Towards Automatic Discovery of Deviations in Binary Implementations with Applications to Error Detection and Fingerprint Generation
Students: Dan Caselden
Kostas G. Anagnostakis, Stelios Sidiroglou, Periklis Akritidis, Konstantinos Xinidis, Evangelos Markatos, and Angelos D. Keromytis
Detecting Targeted Attacks Using Shadow Honeypots
Students: McArthur & Crisler
Cheating is wrong. Cheating hurts our community by undermining academic integrity, creating mistrust, and fostering unfair competition. The university will punish cheaters with failure on an assignment, failure in a course, permanent transcript notation, suspension, and/or expulsion. Offenses may be reported to medical, law or other professional or graduate schools when a cheater applies.
Violations can include cheating on exams, plagiarism, reuse of assignments without permission, improper use of the Internet and electronic devices, unauthorized collaboration, alteration of graded assignments, forgery and falsification, lying, facilitating academic dishonesty, and unfair competition. Ignorance of these rules is not an excuse.
Academic honesty is required in all work you submit to be graded. Except where the instructor specifies group work, you must solve all homework and programming assignments without the help of others. For example, you must not look at anyone else’s solutions (including program code) to your homework problems. However, you may discuss assignment specifications (not solutions) with others to be sure you understand what is required by the assignment.
If your instructor permits using fragments of source code from outside sources, such as your textbook or on-line resources, you must properly cite the source. Not citing it constitutes plagiarism. Similarly, your group projects must list everyone who participated.
Falsifying program output or results is prohibited.
Your instructor is free to override parts of this policy for particular assignments. To protect yourself: (1) Ask the instructor if you are not sure what is permissible. (2) Seek help from the instructor, TA or CAs, as you are always encouraged to do, rather than from other students. (3) Cite any questionable sources of help you may have received.
On every exam, you will sign the following pledge: "I agree to complete this exam without unauthorized assistance from any person, materials or device. [Signed and dated]". Your course instructors will let you know where to find copies of old exams, if they are available.
For more information, see the guide on "Academic Ethics for Undergraduates" and the Ethics Board web site (http://ethics.jhu.edu).